For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

maurox_59221's avatar
maurox_59221
Icon for Nimbostratus rankNimbostratus
Oct 22, 2013

Ldap query from ltm

Hi all, I'm searching an irule that would direct all the authenticated users (that belong to a specific group defined on the ldap profile/object) to a specific pool. All the others users (that aren't...
application delivery
devops
iRules
maurox_59221's avatar
maurox_59221
Icon for Nimbostratus rankNimbostratus
Nov 20, 2013

Hi kevin,

 

this value has to come from the irule that will pass it to the apm module :

 

I've configured an irule for catching (using a regex) the user information from the URI, create an apm session (ACCESS::session create) and passing the user information to the apm policy (as a dynamic variable).

 

I've tried to post this irule (as a preformatted code), but every-time I receive an error from the devecentral portal :-(

 

If I try with an invalid user, the apm policy will work and I receive the failure message from the apm. But if the user is the correct one (a member of the group defined on the ldap query), the apm policy works but I'm having a segmentation violation error on the APM . IN this situation the session remains in "pending" state...

 

F5 is telling me that this could be a bug :-(

 

Thanks for your support,

 

Mauro